From 2d9c516c499047c16e71d2e7a2e9f55271763a0a Mon Sep 17 00:00:00 2001
From: "Daniel P. Berrange" <berrange@redhat.com>
Date: Thu, 3 Mar 2016 11:15:55 +0000
Subject: [PATCH] linux_bridge: actually apply the iptables rules

The linux bridge network code for creating bridges never
actually told the iptables manager to apply the rules it
just set. Previously when this code lived inside Nova it
just happened to work, because there was a single iptables
manager instance in nova and other unrelated code would
fortunately apply iptables rules. Now we're standalone
we must explicitly apply them

Change-Id: I26e27c1c4b337d0a51efbe37ca671b4f23cf38db
---
 vif_plug_linux_bridge/linux_net.py | 1 +
 1 file changed, 1 insertion(+)

diff --git a/vif_plug_linux_bridge/linux_net.py b/vif_plug_linux_bridge/linux_net.py
index 70405aa..bef30b9 100644
--- a/vif_plug_linux_bridge/linux_net.py
+++ b/vif_plug_linux_bridge/linux_net.py
@@ -184,6 +184,7 @@ def ensure_bridge(bridge, interface, net_attrs=None, gateway=True,
                                  ('--out-interface %s -j %s'
                                   % (bridge,
                                      _IPTABLES_MANAGER.iptables_drop_action)))
+        _IPTABLES_MANAGER.apply()
 
 
 def configure(iptables_mgr):